Endpoint Security for Mac 22.214.171.124032 Release Notes
- Fast ring: 2019.08.08
- Slow ring: 2019.08.09
- Introduced a new Antimalware technology, which uses a macOS kernel extension for on-access scanning. This technology is designed to accommodate new features like process exclusions and future enhancements.
Starting with macOS High Sierra (10.13), user approval or whitelisting via MDM is required for loading kernel extensions. Until Bitdefender kernel extensions are approved, on-access scanning falls back on the old file system notifications technology to ensure the system is protected immediately after installation. On-access scanning uses an existing kernel extension, so for existing installations there is no need to approve Bitdefender kernel extensions again if approved previously.
- Content Control now scans all HTTP web traffic, regardless of the browser or application performing web access. You can now configure application exclusions for Traffic Scan.
- Added support for reporting Content Control detections in EDR incidents.
- Added support for process exclusions, where any file accessed by an excluded process is not scanned. Process exclusions are intended to be used by advanced users or following Bitdefender Enterprise Support recommendations.
- Added support for $HOME user path variable when configuring exclusions, as well as the scan target of custom scan tasks.
- Added support for granular threat type reporting to the GravityZone console (e.g. spyware, adware, application).
- Quick Scan tasks ran from the GravityZone console now scan all user folders in addition to critical system locations.
- Added support for the Empty Quarantine option from the GravityZone console. Now, the Empty Quarantine button is also available locally, in the Endpoint Security for Mac interface.
- The Update Virus Database option name from the Actions menu was renamed to Check for Updates.
- The Encryption-related windows now display the product name ("Endpoint Security for Mac").
- The About window now displays the product engines version.
- The Bitdefender kernel extension used for on-access scanning is now automatically installed on older Endpoint Security for Mac installations where it was not installed already. In such case, on macOS 10.13+ systems, the user will be prompted to approve loading of Bitdefender kernel extensions.
- In some cases, the product did not report the Antimalware module installation.
- On-demand scanning tasks for local drives and removable drives did not properly work when scheduled from the GravityZone console.
- The product reported an incorrect signatures version to the GravityZone console.
- The Encryption module did not take ownership of drives encrypted with FileVault when using iCloud as option for recovery.
- A notification regarding the Encryption module was displayed when enabling or disabling the On-access scanning module.
- The product interface displayed simultaneous scanning tasks when one was started locally and another one from the GravityZone console.
- The product reported incorrect update time in the GravityZone console after disabling the product update.
- In particular cases, the EndpointSecurityforMac process was still active after removing the product with the Uninstaller utility.
- The main window automatically showed up after the system restart.
- The Encryption module user interface is now localized for all supported languages.
- In version 126.96.36.199030, released on fast ring only, sending a Restart machine task from the GravityZone console caused the product interface to crash.